Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Chore/add hide idps #1304

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
george42-ctds merged 11 commits into from
Nov 6, 2025
Merged

Chore/add hide idps #1304

george42-ctds merged 11 commits into from
Nov 6, 2025

Conversation

@george42-ctds
Copy link
Contributor

@george42-ctds george42-ctds commented Oct 13, 2025
edited by atlassian bot
Loading

JIRA ticket: HP-2270

New Features

  • Allow a HIDE_IDPS configuration option when shib_ipds=*

Breaking Changes

Bug Fixes

Improvements

Dependency updates

Deployment changes

@coveralls
Copy link

coveralls commented Oct 13, 2025
edited
Loading

Pull Request Test Coverage Report for Build 19143615376

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • 39 unchanged lines in 3 files lost coverage.
  • Overall coverage increased (+0.009%) to 74.969%
Files with Coverage Reduction New Missed Lines %
resources/ga4gh/passports.py 2 87.43%
config.py 16 67.14%
blueprints/login/init.py 21 87.04%
Totals Coverage Status
Change from base Build 19048361372: 0.009%
Covered Lines: 8437
Relevant Lines: 11254
💛 - Coveralls

@github-actions
Copy link

github-actions bot commented Oct 13, 2025

filepath passed skipped SUBTOTAL
tests/test_oauth2.py 15 0 15
tests/test_centralized_auth.py 16 0 16
tests/test_audit_service.py 3 3 6
tests/test_data_upload.py 8 1 9
tests/test_presigned_url.py 7 0 7
tests/test_dbgap.py 4 1 5
tests/test_drs_endpoint.py 4 0 4
tests/test_oidc_client.py 2 0 2
tests/test_user_token.py 5 0 5
tests/test_google_data_access.py 1 0 1
tests/test_client_credentials.py 1 0 1
tests/test_ras_authn.py 0 3 3
tests/test_register_user.py 0 2 2
TOTAL 66 10 76

Please find the detailed integration test report here

Please find the Github Action logs here

mfshao
mfshao reviewed Oct 21, 2025
View reviewed changes
fence/blueprints/login/__init__.py Outdated
upstream_idps = UPSTREAM_IDP_CACHE.get(cache_key)
if hide_idps_list and len(hide_idps_list) > 0:
hidden_idps_excluded = [
x for x in upstream_idps if x.get("name") not in hide_idps_list
Copy link
Contributor

@mfshao mfshao Oct 21, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the idea is right. But I also think we should be putting the IDP's entityID into HIDE_IDPS instead of their names. Since this is how Shibboleth IDPs can be configured to enable in Fence config now, like

fence/docs/additional_documentation/fence_shibboleth.md

Lines 84 to 86 in 2a0ede3

shib_idps:
- urn:mace:incommon:nih.gov
- urn:mace:incommon:uchicago.edu

Copy link
Contributor Author

@george42-ctds george42-ctds Oct 23, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The hide list is updated to use idp instead of name. The unit test cases have been expanded to show that this works when shib_idsp=[list] in addition to shib_idps=*.

@github-actions
Copy link

github-actions bot commented Oct 22, 2025

filepath passed skipped SUBTOTAL
tests/test_oauth2.py 15 0 15
tests/test_centralized_auth.py 16 0 16
tests/test_audit_service.py 3 3 6
tests/test_data_upload.py 8 1 9
tests/test_presigned_url.py 7 0 7
tests/test_dbgap.py 4 1 5
tests/test_drs_endpoint.py 4 0 4
tests/test_oidc_client.py 2 0 2
tests/test_user_token.py 5 0 5
tests/test_google_data_access.py 1 0 1
tests/test_client_credentials.py 1 0 1
tests/test_ras_authn.py 0 3 3
tests/test_register_user.py 0 2 2
TOTAL 66 10 76

Please find the detailed integration test report here

Please find the Github Action logs here

@github-actions
Copy link

github-actions bot commented Oct 22, 2025

filepath passed error skipped SUBTOTAL
tests/test_oauth2.py 15 0 0 15
tests/test_centralized_auth.py 16 0 0 16
tests/test_audit_service.py 3 0 3 6
tests/test_data_upload.py 7 3 1 11
tests/test_presigned_url.py 7 0 0 7
tests/test_dbgap.py 4 0 1 5
tests/test_drs_endpoint.py 4 0 0 4
tests/test_oidc_client.py 2 0 0 2
tests/test_user_token.py 5 0 0 5
tests/test_google_data_access.py 1 0 0 1
tests/test_client_credentials.py 1 0 0 1
tests/test_ras_authn.py 0 0 3 3
tests/test_register_user.py 0 0 2 2
TOTAL 65 3 10 78

Please find the detailed integration test report here

Please find the Github Action logs here

@github-actions
Copy link

github-actions bot commented Oct 22, 2025

filepath passed failed skipped SUBTOTAL
tests/test_oauth2.py 15 0 0 15
tests/test_centralized_auth.py 16 0 0 16
tests/test_audit_service.py 3 0 3 6
tests/test_data_upload.py 7 1 1 9
tests/test_presigned_url.py 7 0 0 7
tests/test_dbgap.py 4 0 1 5
tests/test_drs_endpoint.py 4 0 0 4
tests/test_oidc_client.py 2 0 0 2
tests/test_user_token.py 5 0 0 5
tests/test_google_data_access.py 1 0 0 1
tests/test_client_credentials.py 1 0 0 1
tests/test_ras_authn.py 0 0 3 3
tests/test_register_user.py 0 0 2 2
TOTAL 65 1 10 76

Please find the detailed integration test report here

Please find the Github Action logs here

@github-actions
Copy link

github-actions bot commented Oct 22, 2025

filepath passed failed skipped SUBTOTAL
tests/test_oauth2.py 15 0 0 15
tests/test_centralized_auth.py 16 0 0 16
tests/test_audit_service.py 3 0 3 6
tests/test_data_upload.py 8 0 1 9
tests/test_presigned_url.py 7 0 0 7
tests/test_dbgap.py 4 0 1 5
tests/test_drs_endpoint.py 4 0 0 4
tests/test_oidc_client.py 2 0 0 2
tests/test_client_credentials.py 1 0 0 1
tests/test_user_token.py 5 0 0 5
tests/test_ras_authn.py 0 0 3 3
tests/test_register_user.py 0 0 2 2
tests/test_google_data_access.py 0 1 0 1
TOTAL 65 1 10 76

Please find the detailed integration test report here

Please find the Github Action logs here

@github-actions
Copy link

github-actions bot commented Oct 22, 2025

filepath SUBTOTAL
TOTAL 0

Please find the detailed integration test report here

Please find the Github Action logs here

@github-actions
Copy link

github-actions bot commented Oct 23, 2025

filepath passed error SUBTOTAL
tests/test_discoverypage.py 0 5 5
tests/test_google_data_access.py 1 0 1
TOTAL 1 5 6

Please find the detailed integration test report here

Please find the Github Action logs here

@github-actions
Copy link

github-actions bot commented Oct 23, 2025

filepath passed SUBTOTAL
tests/test_google_data_access.py 1 1
TOTAL 1 1

Please find the detailed integration test report here

Please find the Github Action logs here

mfshao
mfshao reviewed Oct 23, 2025
View reviewed changes
fence/config-default.yaml Outdated
ITRUST_GLOBAL_LOGOUT: 'https://auth.nih.gov/siteminderagent/smlogout.asp?mode=nih&AppReturnUrl='

# The following names will be hidden from the InCommons drop down list when shib_idps=*
# eg, HIDE_IDPS = ["The University of Texas Southwestern Medical Center"]
Copy link
Contributor

@mfshao mfshao Oct 23, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we should update this example (and the other one below as well)

Copy link
Contributor Author

@george42-ctds george42-ctds Oct 23, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This example HIDE_IDPS has been updated. Is there another one that needs updating?

@github-actions
Copy link

github-actions bot commented Oct 23, 2025

filepath passed skipped SUBTOTAL
tests/test_oauth2.py 15 0 15
tests/test_centralized_auth.py 16 0 16
tests/test_audit_service.py 3 3 6
tests/test_data_upload.py 8 1 9
tests/test_presigned_url.py 7 0 7
tests/test_dbgap.py 4 1 5
tests/test_drs_endpoint.py 4 0 4
tests/test_oidc_client.py 2 0 2
tests/test_user_token.py 5 0 5
tests/test_google_data_access.py 1 0 1
tests/test_client_credentials.py 1 0 1
tests/test_ras_authn.py 0 3 3
tests/test_register_user.py 0 2 2
TOTAL 66 10 76

Please find the detailed integration test report here

Please find the Github Action logs here

mfshao
mfshao approved these changes Nov 6, 2025
View reviewed changes
Copy link
Contributor

@mfshao mfshao left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good!

@github-actions
Copy link

github-actions bot commented Nov 6, 2025

Failed to Prepare CI environment

Please find the Github Action logs here

@github-actions
Copy link

github-actions bot commented Nov 6, 2025

filepath passed skipped SUBTOTAL
tests/test_oauth2.py 15 0 15
tests/test_centralized_auth.py 16 0 16
tests/test_audit_service.py 3 3 6
tests/test_data_upload.py 8 1 9
tests/test_presigned_url.py 7 0 7
tests/test_dbgap.py 4 1 5
tests/test_drs_endpoint.py 4 0 4
tests/test_oidc_client.py 2 0 2
tests/test_user_token.py 5 0 5
tests/test_google_data_access.py 1 0 1
tests/test_client_credentials.py 1 0 1
tests/test_ras_authn.py 0 3 3
tests/test_register_user.py 0 2 2
TOTAL 66 10 76

Please find the detailed integration test report here

Please find the Github Action logs here

@george42-ctds george42-ctds merged commit 4173550 into master Nov 6, 2025
11 of 12 checks passed
@george42-ctds george42-ctds deleted the chore/add-hide-idps branch November 6, 2025 19:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mfshao mfshao mfshao approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@george42-ctds @coveralls @mfshao